[fw-wiz] IP aliasing behind a PIX
From: Don Owens (don@xlogistics.com)
Date: 01/18/03
- Next message: Paul D. Robertson: "Re: [fw-wiz] What's the best?"
- Previous message: Manlio Frizzi: "[fw-wiz] What's the best?"
- Next in thread: Don Owens: "[fw-wiz] Re: IP aliasing behind a PIX"
- Reply: Don Owens: "[fw-wiz] Re: IP aliasing behind a PIX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Don Owens <don@xlogistics.com> To: firewall-wizards@honor.icsalabs.com Date: Sat Jan 18 21:42:01 2003
Hi guys,
I'm overloading interfaces on Solaris and Linux boxen to have multiple
IPs (same network though) behind a PIX firewall. From within the
network, the aliases work fine (i.e., the machines are accessible using
the aliased IPs). However, when trying to get to them from outside the
network, the IPs are unreachable. These are public IPs and the routing
works fine for each IP if that IP is the main IP of the box. If I swap
the IP of one of the aliases with the main IP, that IP is then
reachable. Then the alias works as well until I reboot the PIX.
It seems to me this has to be the PIX, as I have not had this problem in
the past using access lists on routers as firewalls. Has anyone else
seen this problem? Am I missing a simple setting on the PIX or
something?
Any ideas?
Don
-- Don Owens don@xlogistics.com www.xlogistics.com Express Logistics 48541 Warm Springs Blvd., Ste. 505 Fremont, CA 94539
- Next message: Paul D. Robertson: "Re: [fw-wiz] What's the best?"
- Previous message: Manlio Frizzi: "[fw-wiz] What's the best?"
- Next in thread: Don Owens: "[fw-wiz] Re: IP aliasing behind a PIX"
- Reply: Don Owens: "[fw-wiz] Re: IP aliasing behind a PIX"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
